CVE-2026-9452
Published: 25 May 2026
Summary
CVE-2026-9452 is a medium-severity Command Injection (CWE-77) vulnerability. Its CVSS base score is 5.5 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 28.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
A security vulnerability has been identified in FoundDream miniclawd up to commit 2d65665046e2222eeea76cafc8570ed546a8c125, specifically in the ExecTool.execute function within the file /src/tools/exec.ts. The flaw enables operating system command injection and carries a CVSS 4.0 score of 5.5. The product does not employ versioning, so no affected or unaffected releases are defined, and the maintainers have not responded to the early disclosure via issue report.
Remote attackers without authentication can exploit the issue to inject and execute arbitrary operating system commands, resulting in limited impacts to confidentiality, integrity, and availability. The attack vector is network-accessible with low complexity, and a public exploit has already been disclosed.
References including the project repository at github.com/FoundDream/miniclawd and the associated issue report indicate that no patches or mitigation guidance have been published. The EPSS score remains flat at 0.0218 with no material increase observed since disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-31668
Vulnerability details
A security vulnerability has been detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. Affected by this issue is the function ExecTool.execute of the file /src/tools/exec.ts. Such manipulation leads to os command injection. The attack can be launched remotely. The exploit has…
more
been disclosed publicly and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The project was informed of the problem early through an issue report but has not responded yet.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Remote OS command injection in ExecTool.execute directly enables T1190 (public-facing app exploitation) and arbitrary command execution via T1059 (Command and Scripting Interpreter).
CVEs Like This One
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.